Help Center/ Web Application Firewall/ Best Practices/ Configuring Alarms on Cloud Eye for Abnormal WAF Metrics
Updated on 2024-07-25 GMT+08:00

Configuring Alarms on Cloud Eye for Abnormal WAF Metrics

Application Scenarios

This topic describes how to create alarms for abnormal WAF metrics on Cloud Eye. So, you can learn about the WAF protection status in a timely manner. If there is something wrong, you can take actions in time.

For details, see WAF Monitored Metrics.

Prerequisites

Resource and Cost Planning

Table 1 Resources and costs

Resource

Description

Monthly Fee

WAF

Cloud - Standard edition

  • Billing mode: Yearly/Monthly
  • Domain name quota: 10, including a maximum of one top-level domain name
  • QPS quota: 2,000 QPS
  • Peak bandwidth: 100 Mbit/s inside the cloud and 30 Mbit/s outside the cloud

For details about pricing rules, see Billing Description.

Cloud Eye

  • Basic functions of Cloud Eye, such as viewing monitoring panels, creating alarm rules, and adding monitoring items, are free of charge.
  • If you want to receive alarm notifications, you need to pay for it.

    SMN is billed based on the usage of SMS, emails, or HTTP/HTTPS requests. For details, see Billing.

-

Configuring a Monitoring Alarm Rule

You can set WAF alarm rules to customize the monitored objects and notification policies, and set parameters such as the alarm rule name, monitored object, metric, threshold, monitoring scope, and whether to send notifications. This helps you learn the WAF protection status in a timely manner.

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Hover over in the upper left corner of the page and choose Management & Governance > Cloud Eye.
  4. In the navigation pane on the left, choose Alarm Management > Alarm Rules.
  5. In the upper right corner of the page, click Create Alarm Rule.
  6. Configure related parameters.

    • Name: Enter a name.
    • Alarm Type: Select Metric.
    • Cloud product: Select Web Application Firewall - Dedicated WAF Instance or Web Application Firewall - Domains.
      • For dedicated instance metrics, select Web Application Firewall - Dedicated WAF Instance as the monitored metric.
      • For protected domain names, select Web Application Firewall - Domains.
    • Monitoring Scope: Select All resources.
    • Method: Select Associated template or create a custom template.
    • Alarm Notification: If you want to receive alarms in real time, enable this option and select a notification mode.
    • Other parameters: Set them based on site requirements.
    Figure 1 Create Alarm Rule

  7. Click Create. In the displayed dialog box, click OK.

Viewing Monitored Metrics

You can view WAF metrics on the Cloud Eye console and learn about the WAF protection status in a timely manner.

  1. In the navigation pane on the left, choose Cloud Service Monitoring.
  2. Search for Web Application Firewall WAF by Dashboard in the search box. In the Dashboard column, click Web Application Firewall WAF to go to the Details page.
  3. On the Overview tab, you can view metrics related to resource overview and alarm statistics.

    Figure 2 Viewing key metrics

  4. Click the Resources tab. In the Operation column of the instance list, click View Metric.

    To view the monitoring information about a specific website, you can go to the Website Settings page on the WAF console, locate the row containing the target domain name and click Cloud Eye in the Operation column.

    Figure 3 Viewing monitored metrics